tp-link routers and the Kr00k vulnerability (CVE-2019-15126)

This thread has been locked for further replies. You can start a new thread to share your ideas or ask questions.

tp-link routers and the Kr00k vulnerability (CVE-2019-15126)

This thread has been locked for further replies. You can start a new thread to share your ideas or ask questions.
tp-link routers and the Kr00k vulnerability (CVE-2019-15126)
tp-link routers and the Kr00k vulnerability (CVE-2019-15126)
2020-02-27 13:53:12

Hi,

 

could you please make a statement regarding the WPA2 vulnerability that was uncovered today?

 

https://nvd.nist.gov/vuln/detail/CVE-2019-15126

 

Are you aware of this? Has this been patched (apple patched it last october, so there was advance warning)

 

thanks!

  0      
  0      
#1
Options
3 Reply
Re:tp-link routers and the Kr00k vulnerability (CVE-2019-15126)
2020-02-28 03:51:50

@alfarme 

 

Hello, what is the model number of your device? And please tell us its hardware/firmware version as well. 

 

Besides, our engineers are working on it and try to verify whether our products have been affected. 

 

Thanks for your feedback again. Good day. 

Nice to Meet You in Our TP-Link Community. Check Out the Latest Posts: Connect TP-Link Archer BE550 to Germany's DS-Lite (Dual Stack Lite) Internet via WAN Archer GE550 - BE9300 Tri-Band Wi-Fi 7 Gaming Router Archer BE800 New Firmware Added Support for EasyMesh in AP Mode, DoH&DoT, and 3-Band MLO Connection Archer AX90 New Firmware Added Support for EasyMesh and Ethernet Backhaul If you found a post or response helpful, please click Helpful (arrow pointing upward icon). If you are the author of a topic, remember to mark a helpful reply as the "Recommended Solution" (star icon) so that others can benefit from it.
  0  
  0  
#3
Options
Re:tp-link routers and the Kr00k vulnerability (CVE-2019-15126)
2020-03-03 11:15:07
Hi Kevin, Model is Archer AX6000 v1.0 Firmware is 1.0.6 Build 20190822 rel.26396(4555) (latest) Aside from that, you need to update ALL your devices' which are equipped with WPA2 encryption (and have Broadcom or Cypress chipsets) Thanks!
  0  
  0  
#4
Options
Re:tp-link routers and the Kr00k vulnerability (CVE-2019-15126)
2020-03-04 03:28:40

@alfarme 

 

Thanks for your valued reply. We at TP-Link have been aware of the vulnerability and our team is still investigating whether any of tp-link routers are affected. 

 

If there is any information about this vulnerability on tp-link devices, we will publish it on our official website and will handle it as soon as possible.  

 

Please pay attention to our website and be patient.


Thanks a lot. 

Nice to Meet You in Our TP-Link Community. Check Out the Latest Posts: Connect TP-Link Archer BE550 to Germany's DS-Lite (Dual Stack Lite) Internet via WAN Archer GE550 - BE9300 Tri-Band Wi-Fi 7 Gaming Router Archer BE800 New Firmware Added Support for EasyMesh in AP Mode, DoH&DoT, and 3-Band MLO Connection Archer AX90 New Firmware Added Support for EasyMesh and Ethernet Backhaul If you found a post or response helpful, please click Helpful (arrow pointing upward icon). If you are the author of a topic, remember to mark a helpful reply as the "Recommended Solution" (star icon) so that others can benefit from it.
  0  
  0  
#5
Options